98 				      struct av_decision *avd,
206 			 u16 tclass, struct av_decision *avd,  in map_decision()  argument
215 			if (avd->allowed & mapping->perms[i])  in map_decision()
220 		avd->allowed = result;  in map_decision()
223 			if (avd->auditallow & mapping->perms[i])  in map_decision()
225 		avd->auditallow = result;  in map_decision()
228 			if (avd->auditdeny & mapping->perms[i])  in map_decision()
240 		avd->auditdeny = result;  in map_decision()
544 				     struct av_decision *avd)  in type_attribute_bounds_av()  argument
579 	masked = ~lo_avd.allowed & avd->allowed;  in type_attribute_bounds_av()
585 	avd->allowed &= ~masked;  in type_attribute_bounds_av()
625 				      struct av_decision *avd,  in context_struct_compute_av()  argument
637 	avd->allowed = 0;  in context_struct_compute_av()
638 	avd->auditallow = 0;  in context_struct_compute_av()
639 	avd->auditdeny = 0xffffffff;  in context_struct_compute_av()
670 					avd->allowed |= node->datum.u.data;  in context_struct_compute_av()
672 					avd->auditallow |= node->datum.u.data;  in context_struct_compute_av()
674 					avd->auditdeny &= node->datum.u.data;  in context_struct_compute_av()
681 					avd, xperms);  in context_struct_compute_av()
692 		if ((constraint->permissions & (avd->allowed)) &&  in context_struct_compute_av()
695 			avd->allowed &= ~(constraint->permissions);  in context_struct_compute_av()
706 	    (avd->allowed & policydb->process_trans_perms) &&  in context_struct_compute_av()
714 			avd->allowed &= ~policydb->process_trans_perms;  in context_struct_compute_av()
723 				 tclass, avd);  in context_struct_compute_av()
950 static void avd_init(struct selinux_policy *policy, struct av_decision *avd)  in avd_init()  argument
952 	avd->allowed = 0;  in avd_init()
953 	avd->auditallow = 0;  in avd_init()
954 	avd->auditdeny = 0xffffffff;  in avd_init()
956 		avd->seqno = policy->latest_granting;  in avd_init()
958 		avd->seqno = 0;  in avd_init()
959 	avd->flags = 0;  in avd_init()
1116 			 struct av_decision *avd,  in security_compute_av()  argument
1127 	avd_init(policy, avd);  in security_compute_av()
1144 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av()
1159 	context_struct_compute_av(policydb, scontext, tcontext, tclass, avd,  in security_compute_av()
1161 	map_decision(&policy->map, orig_tclass, avd,  in security_compute_av()
1167 	avd->allowed = 0xffffffff;  in security_compute_av()
1175 			      struct av_decision *avd)  in security_compute_av_user()  argument
1184 	avd_init(policy, avd);  in security_compute_av_user()
1200 		avd->flags |= AVD_FLAGS_PERMISSIVE;  in security_compute_av_user()
1215 	context_struct_compute_av(policydb, scontext, tcontext, tclass, avd,  in security_compute_av_user()
1221 	avd->allowed = 0xffffffff;  in security_compute_av_user()